From owner-freebsd-questions  Sun Dec 21 10:54:51 1997
Return-Path: <owner-freebsd-questions>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id KAA18356
          for questions-outgoing; Sun, 21 Dec 1997 10:54:51 -0800 (PST)
          (envelope-from owner-freebsd-questions)
Received: from ocala.cs.miami.edu (ocala.cs.miami.edu [129.171.34.17])
          by hub.freebsd.org (8.8.7/8.8.7) with SMTP id KAA18351
          for <freebsd-questions@freebsd.org>; Sun, 21 Dec 1997 10:54:49 -0800 (PST)
          (envelope-from jmcla@ocala.cs.miami.edu)
Received: from ocala.cs.miami.edu by ocala.cs.miami.edu via SMTP (950413.SGI.8.6.12/940406.SGI)
	 id NAA04614; Sun, 21 Dec 1997 13:54:48 -0500
Date: Sun, 21 Dec 1997 13:54:48 -0500 (EST)
From: "Joe \"Marcus\" Clarke" <jmcla@ocala.cs.miami.edu>
Reply-To: "Joe \"Marcus\" Clarke" <jmcla@ocala.cs.miami.edu>
To: FreeBSD User Questions List <freebsd-questions@freebsd.org>
cc: brian@awfulhak.org
Subject: server socket for ppp
Message-ID: <Pine.SGI.3.96.971221135031.4588A-100000@ocala.cs.miami.edu>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

I'm not sure if this is necessarily a bug, or if I'm doing something
wrong.  But in the man page for pppctl, it says a good way to secure
user ppp is to set the diagnostic server to be a local socket.  It also
says to give it the mask 0177.  This should create a server socket with
the protection srw-------.  However, no matter what mode I tell ppp to
use, it creates a socket with the protection srwxrwxrwx.  Currently my
set server line looks like:

set server /var/run/internet "" 0600

Am I missing something?

Joe Clarke

P.S. Thanks for the ifilters, Brian, they work great.